DESCRIPTION

Senior Cybersecurity Analyst - (Chicago - Remote, US)

WHAT TO EXPECT WHEN YOU JOIN THE SIKICH FAMILY

Team members at Sikich have a lot in common while also being part of a rich and varied group of contributors, creating a distinct and thriving culture. Chief among our commonalities is a desire for growth and a shared unity of purpose in our professional lives. We believe that through various perspectives, challenging the status quo and rewarding action, we accelerate innovation and drive growth – for our clients, for ourselves and for our communities.
The professional services landscape continues to evolve. For Sikich, this means we have an opportunity to further cement our leadership position in this industry and continue to grow our organization in increasingly exciting ways. This growth is meaningful for every team member at our company because larger companies simply see more interesting client opportunities and can attract impressively talented individuals like you. Through a dedicated focus on key business priorities and intentionally creating a rewarding employee experience, Sikich has developed into a highly regarded provider of professional services and a sought-after employer of choice.
Do you want to work with other skilled practitioners and serve clients in a way that makes a difference? Are you seeking a supportive environment backed by a deep and extensive set of skillsets? Are you ready to make an impact and be acknowledged for your contributions? If you answered yes to these questions, we see a mutually beneficial and gratifying relationship on the horizon!
Are you ready to grow with us?

POSITION SUMMARY

Sikich is seeking a Senior Cybersecurity Analyst to serve as a key escalation point for Security alerts while proactively evaluating security reports, event patterns, and client environments to develop strategic recommendations that enhance our clients’ overall security posture.
This role combines reactive incident handling with proactive environment analysis — conducting in-depth investigations, assessing security controls, and identifying opportunities for process and technology improvements. The analyst will provide both immediate response to threats and long-term recommendations to strengthen defenses, working closely with internal teams, leadership, and clients.

IN ADDITION, SPECIFIC SKILLS/EXPERIENCE REQUIRED ARE AS FOLLOWS:

• Servant Leader – You are hyper focused on engaging employees, fostering their development, and building a positive culture.

• Solutions Focused – You see opportunities in every business problem and can develop, articulate, and implement solutions.

• Collaboration – You are a relationship builder across all levels of the organization and across all business units.
• Instills Trust - You do what you say, and you follow through on commitments, you act with integrity, you are consistent and are perceived as credible.
• Impact & Influence Thinking – You gain support for ideas, proposals, and solutions, and get others to act, with or without formal authority, to advance initiatives/objectives.

WHAT WILL YOU DO IN THIS ROLE?

• Review and analyze SOC alerts, event trends, and client security environments to identify gaps, recurring issues, and improvement opportunities.
• Develop actionable strategic recommendations for security control enhancements, process refinements, and detection rule tuning.
• Evaluate the effectiveness of detection and response capabilities across client environments and recommend optimization strategies.
• Partner with clients during onboarding to validate security requirements, perform tool integrations and configurations, and tailor monitoring controls to meet organizational needs.
• Lead small-scale security improvement projects, including SOC workflow updates and tool configuration enhancements.
• Contribute to compliance readiness by ensuring monitoring and response processes align with frameworks such as NIST CSF and CIS Controls.
• Collaborate with leadership on technology evaluations, providing input on new tools, integrations, and detection capabilities.
• Serve as the escalation point for SOC alerts, triaging and investigating potential threats to determine risk and impact.
• Lead and coordinate the containment, mitigation, and resolution of escalated security incidents.
• Conduct post-incident reviews, internally and with clients, to determine root cause, document findings, and recommend preventive measures.
• Perform advanced threat hunting activities to proactively detect indicators of compromise.
• Escalate high-severity incidents to the Incident Response (IR) team when needed, ensuring complete transfer of investigative context.
• Maintain and optimize security tools, SIEM configurations, and monitoring dashboards.

WHAT DO YOU NEED TO SUCCEED IN THIS ROLE?

• 5+ years of cybersecurity experience, including at least 2 years in SOC operations, incident response, or threat hunting.
• Strong background in alert triage, log analysis, and security environment evaluation.
• Demonstrated ability to create actionable security recommendations based on trends, patterns, and post-incident findings.
• Proficiency with SIEM platforms, security monitoring tools, and EDR solutions.
• Familiarity with NIST, CIS, or other security compliance frameworks.
• Professional certifications such as CISSP, CISM, GIAC, or equivalent preferred.
• Excellent communication skills, with the ability to present technical findings and recommendations to both technical and business audiences.
• Experience with PSA and RMM tools (e.g., ConnectWise Manage, Automate) a plus.